FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVSS Score
7.5
EPSS Score
0.011
Published
1997-12-10
Buffer overflow in statd allows root privileges.
CVSS Score
10.0
EPSS Score
0.103
Published
1997-12-05
Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters.
CVSS Score
10.0
EPSS Score
0.083
Published
1997-11-26
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).
CVSS Score
10.0
EPSS Score
0.011
Published
1997-10-29
In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.
CVSS Score
7.5
EPSS Score
0.027
Published
1997-10-01
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-10-01
nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers.
CVSS Score
7.5
EPSS Score
0.005
Published
1997-10-01
DNS cache poisoning via BIND, by predictable query IDs.
CVSS Score
5.0
EPSS Score
0.013
Published
1997-08-13
Buffer overflow in SunOS/Solaris ps command.
CVSS Score
7.2
EPSS Score
0.004
Published
1997-08-01
ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.
CVSS Score
2.1
EPSS Score
0.003
Published
1997-06-26